Method and Apparatus for Performing Network Address Translation
First Claim
1. A method for performing network address translation, the method comprising:
- storing history of characteristics of inbound traffic packets transmitted to a particular destination, optionally across multiple users;
employing pattern matching to compare characteristics of subsequent inbound traffic packets to the history; and
disambiguating the characteristics of the subsequent inbound traffic packets to determine for the particular destination associated with the subsequent inbound traffic packets based on the pattern matching.
6 Assignments
0 Petitions
Accused Products
Abstract
An embodiment of the invention is a method and corresponding system for improved network address translation (NAT) operation, to enable efficient translation for packets destined for communication systems within a domain utilizing network addresses that are incompatible with source and destination addresses indicated in packets delivered from the global Internet. Since the addresses are not compatible with global Internet addresses, delivery cannot be accomplished except by some method of address translation. Traditional systems have not been constructed to enable such inbound translations, providing, instead, only communication outbound from the incompatibly addressed domain towards the global Internet. The example embodiment employs history and pattern matching between observable characteristics of the inbound payload, associated over time with specific destinations. The example embodiment may also employ DPI search techniques known from widely deployed systems in use today, to identify a field on which the pattern matching may operate.
155 Citations
29 Claims
-
1. A method for performing network address translation, the method comprising:
-
storing history of characteristics of inbound traffic packets transmitted to a particular destination, optionally across multiple users; employing pattern matching to compare characteristics of subsequent inbound traffic packets to the history; and disambiguating the characteristics of the subsequent inbound traffic packets to determine for the particular destination associated with the subsequent inbound traffic packets based on the pattern matching. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A network device for performing network address translation, the network device comprising:
-
a storage module configured to store history of access patterns to destinations, optionally across multiple users; a comparison module configured to employ pattern matching to compare characteristics of subsequent inbound traffic packets to the history; and a disambiguator module configured to use the history to disambiguate a traffic packet in a network address translation (NAT) device. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
-
-
29. A computer program product including a non-transitory computer readable medium having computer readable instructions to perform network address translation, wherein the computer readable instructions, when executed by a processor, cause the processor to:
-
store history of characteristics of inbound traffic packets associated with a particular destination, optionally across multiple users; employ pattern matching to compare characteristics of subsequent inbound traffic packets to the history; and disambiguate the characteristics of the subsequent inbound traffic packets to determine for the particular destination associated with the subsequent inbound traffic packets using the history.
-
Specification